Privilege escalation method and system in Unix-like environment of windows system

Abstract

The embodiment of the invention provides a privilege escalation method and system in a Unix-like environment of a windows system. The privilege escalation method comprises adding an operation and maintenance account into an administrator group; receiving an operation request of privilege escalation, analyzing out the operation and maintenance account and an operation command of privilege escalation of a Unix-like format from the operation request of privilege escalation, and converting the operation command of privilege escalation of the Unix-like format into an operation command of privilege escalation of a windows format; applying the operation and maintenance account and creating sub-processes through an API (application program interface) which allows a user to use an assigned user account for creating processes to execute the operation command of privilege escalation of the windows format. According to the privilege escalation method and system in the Unix-like environment of the windows system, the function of command privilege escalation in the Unix-like environment can be achieved in the windows system, environments of Cygwin and cmd in the windows system are compatible and supported, and path analyses of Cygwin and redirecting of output results are supported.

Description

technical field [0001] The embodiments of the present invention relate to the technical field of account management, and more specifically, relate to a method and system for escalating rights in a Unix-like environment of a windows system. Background technique [0002] Along with the continuous upgrade of computer hardware and software systems, Microsoft's Windows (windows) operating system is also constantly upgraded, from 16-bit, 32-bit to 64-bit operating system. From the original windowsl.0 to the well-known windows95, NT, 97, 98, 2000, Me, XP, Server, Vista, Windows 7 and other versions of continuous updates. [0003] Unix-like systems refer to various traditional Unix systems (such as FreeBSD, OpenBSD, Solaris of Sun Corporation) and various systems similar to traditional Unix (such as Minix, Linux, QNX, etc.). Although some of them are free software and some are commercial software, they all inherit the characteristics of the original Unix to a considerable extent, h...

AI Technical Summary

Problems solved by technology

For example: if the privilege escalation operation is carried out by the command that comes with Cygwin, there will be at least two problems: the path resolution is incorrect (the path format of Cygwin is similar to the path of Linux); the output of the program cannot be displayed in the reborn shell of Cgywin (BASH, GNU Bourne-Again SHell) above

[0008] (2) When Sudowin performs sudo operations, the account needs to be logged into the system, otherwise it cannot be executed. This is different from the current low-privilege real-name account login and switching to the operation and maintenance account with general permissions (for security protection, the operation and maintenance account cannot Network login) There is a big conflict in the process of using sudo operation

[0009] (3) In the operation and maintenance work, it is necessary to switch the real-name account to the operation and maintenance account before performing the operation and maintenance work, but Sudowin cannot provide the function of switching accounts

Images